Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

Identified by type="MessageFlow", this rule enforces replay detection and freshness requirements to prevent replay attacks.

Attributes

Name

Type

Default

Description

checkReplay booleantrue

Enables or disables use of a replay cache to prevent replay attacks. Do not turn off in production.

expires time in seconds180

Maxmimum time permitted between a message's timestamp and when it can be processed. Bounds the size of the replay cache.

Example

<PolicyRule type="MessageFlow" checkReplay="true" expires="60"/>
  • No labels